Analysis and Study of Buffer Overflow Attack Detection Technology

doi:10.3969/j.issn.1000-3428.2007.16.049

Computer Engineering ›› 2007, Vol. 33 ›› Issue (16): 142-143，. doi: 10.3969/j.issn.1000-3428.2007.16.049

• Security Technology • Previous Articles Next Articles

Analysis and Study of Buffer Overflow Attack Detection Technology

XU Qi-jie, XUE Zhi

(School of Information Security Engineering, Shanghai Jiaotong University, Shanghai 200030)

Received:1900-01-01 Revised:1900-01-01 Online:2007-08-20 Published:2007-08-20

缓冲区溢出攻击检测技术的分析和研究

徐启杰，薛质

(上海交通大学信息安全工程学院，上海 200030)

Abstract

Abstract: Buffer overflow attack is one of the most threatening attack types and it jeopardizes information security a lot. According to the principle of the attack, this paper generalizes three necessary steps of a buffer overflow attack. It divides the most popular technologies of buffer overflow attack detection into three types in light of detecting the three attack steps, and also analyzes and studies those technologies.

Key words: buffer overflow, ShellCode, attack detection

摘要：

缓冲区溢出攻击是目前最具威胁的攻击方式之一，对信息安全造成了极大的危害。该文通过分析缓冲区溢出攻击的原理，归纳出攻击所必需的3个步骤，根据检测这3个攻击步骤，将当前最常用的缓冲区溢出攻击检测技术分为3种类型，并对其进行了分析和研究。

关键词: 缓冲区溢出, ShellCode, 攻击检测

CLC Number:

TP309.2

XU Qi-jie; XUE Zhi. Analysis and Study of Buffer Overflow Attack Detection Technology[J]. Computer Engineering, 2007, 33(16): 142-143，.

徐启杰;薛质. 缓冲区溢出攻击检测技术的分析和研究[J]. 计算机工程, 2007, 33(16): 142-143，.

/ / Recommend / Download Citations

URL: http://www.ecice06.com/EN/10.3969/j.issn.1000-3428.2007.16.049

http://www.ecice06.com/EN/Y2007/V33/I16/142

[1]	ZHU Jing, WU Zhongdong, DING Longbin, WANG Yang. DDoS Attack Detection Based on DBN in SDN Environment [J]. Computer Engineering, 2020, 46(4): 157-161,182.
[2]	WANG Ze,CHEN Yongle,WANG Xiaojian. WLAN authentication and attack location scheme based on CSI [J]. Computer Engineering, 2019, 45(6): 181-187.
[3]	WANG Yan,LIU Jiayong,LIU Liang,JIA Peng,LIU Luping. Research on Vulnerability Utilization Tool Development Framework [J]. Computer Engineering, 2018, 44(3): 127-131.
[4]	ZHANG Huanyu,CHEN Kai. Industrial Control System Security Model of Attack Detection and Identification Based on Zero Dynamics [J]. Computer Engineering, 2017, 43(10): 98-103.
[5]	LI Hefei,HUANG Xinli,ZHENG Zhengqi. Detection Method of DDoS Attack Based on Software Defined Network and Its Application [J]. Computer Engineering, 2016, 42(2): 118-123.
[6]	LV Cheng-Shu, WANG Wei-Guo. Shilling Attack Detection Method Based on SVM Under Unbalanced Datasets [J]. Computer Engineering, 2013, 39(5): 132-135.
[7]	SHI Qing-Li. Buffer Overflow Vulnerability Location Technology Based on Code Instrumentation [J]. Computer Engineering, 2012, 38(9): 138-140.
[8]	TUN Wei-Min, GUO Chao-Wei, HUANG Zhi-Wei, SU Qiang, CHEN Qiu-Wei. Vulnerability Exploitation Technology of Structured Exception Handling Based on Windows [J]. Computer Engineering, 2012, 38(20): 5-8.
[9]	WANG Su-Na, LI Yi-Hai, LUO Xin-Guo. Anomalous Attack Traffic Detection Based on Stratified Sampling Algorithm [J]. Computer Engineering, 2012, 38(12): 105-109.
[10]	DONG Feng-Cheng, SHU Hui, KANG Fei, WANG Gan, WEI Wei. Process Analysis of Buffer Overflow Based on Dynamic Binary Platform [J]. Computer Engineering, 2012, 38(06): 66-68.
[11]	FENG Xin, YANG Hua-Min, SONG Xiao-Long. Improved Detection Method of Node Replication Attack in Wireless Sensor Network [J]. Computer Engineering, 2011, 37(23): 121-123,124.
[12]	YA Chao, WANG Die-Jun, XUE Zhi. Research and Application of ROP Automatica Generation Technology on Windows [J]. Computer Engineering, 2011, 37(23): 270-272.
[13]	HU Zong-Li, CHU Ti-Fei, MA E-Na, HAN Yu-Xiang. Cisco Internetwork Operating System Memory Management and Its Vulnerability Analysis [J]. Computer Engineering, 2011, 37(20): 24-26.
[14]	YANG Heng, WEI Li-Xian, YANG Xiao-Yuan. Sybil Attack Detection Scheme in Wireless Sensor Network [J]. Computer Engineering, 2011, 37(12): 122-124.
[15]	SHI Qing-Li, LIN Beng-An. Real-time Detection Method of Buffer Overflow Attacks [J]. Computer Engineering, 2011, 37(10): 111-113.

Please choose a citation manager

Content to export

Analysis and Study of Buffer Overflow Attack Detection Technology

缓冲区溢出攻击检测技术的分析和研究

PDF

Knowledge

Cited

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments

模态框（Modal）标题

Please choose a citation manager

Content to export

Analysis and Study of Buffer Overflow Attack Detection Technology

缓冲区溢出攻击检测技术的分析和研究

PDF

Knowledge

Cited

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments